clop | f092d513d5d8d4e52d90e547f555f03c27aa0e8dc8e535d6733d814c36454d2a | Triage

Submit
Reports

Overview

overview

Static

static

3

ab29a92e08...3e.exe

windows7-x64

ab29a92e08...3e.exe

windows10-2004-x64

7

Sharing

General

Target

ab29a92e081f4e97079a97be6385973e
Size

692KB
Sample

240228-gmz5sscg85
MD5

ab29a92e081f4e97079a97be6385973e
SHA1

bee29bca42e33d042de236e0a67b4e5745e49326
SHA256

f092d513d5d8d4e52d90e547f555f03c27aa0e8dc8e535d6733d814c36454d2a
SHA512

3e161f345456c64a48825fd5c52eb9f8601adaa8299b4a2cc440a4afbcae27af988932812f0f2cb87e6e089377534fbedc7f02f964b9fd8860d9a3e09e7a0c54
SSDEEP

12288:pBr2++HzRcCUNsvdtZhfMF6pI12KM2K/nrRlZmv9BScV:pBz+NrU6vbE6nK+/+9BSy

Score

10^/10

clop ransomware

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

ab29a92e081f4e97079a97be6385973e.exe

Resource

win7-20240221-en

clop ransomware

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

ab29a92e081f4e97079a97be6385973e.exe

Resource

win10v2004-20240226-en

windows10-2004-x64

3 signatures

150 seconds

Malware Config

Targets

- Target
  
  ab29a92e081f4e97079a97be6385973e
- Size
  
  692KB
- MD5
  
  ab29a92e081f4e97079a97be6385973e
- SHA1
  
  bee29bca42e33d042de236e0a67b4e5745e49326
- SHA256
  
  f092d513d5d8d4e52d90e547f555f03c27aa0e8dc8e535d6733d814c36454d2a
- SHA512
  
  3e161f345456c64a48825fd5c52eb9f8601adaa8299b4a2cc440a4afbcae27af988932812f0f2cb87e6e089377534fbedc7f02f964b9fd8860d9a3e09e7a0c54
- SSDEEP
  
  12288:pBr2++HzRcCUNsvdtZhfMF6pI12KM2K/nrRlZmv9BScV:pBz+NrU6vbE6nK+/+9BSy
Score

10^/10

clop ransomware
- clop
  Ransomware discovered in early 2019 which has been actively developed since release.
  ransomware clop
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy